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2. Benefit of Prior U.S. Application(s) (35 U.S.C. 119(e), 120, or 121) 

NOTE: If the new application being transmitted is a continuation, CIP or divisional, of a parent case, or where the parent case is an International Application 
which designated the U.S., or the benefit of a prior provisional application is claimed, then check the following item and complete section as follows. 

0 The new application being transmitted claims the benefit of prior U.S. application(s). 
2.1 Relate Back 

WARNING: If an application claims the benefit of the filing date of an earlier filed application under 35 U.S.C. 120, 121 or 
365(c), the 20-year term of that application will be based upon the filing date of the earliest U.S. application that 
the application makes reference to under 35 U.S.C. 120, 121 or 365(c). (35 U.S.C. 154(a)(2) does not take into 
account, for the determination of the patent term, any application on which priority is claimed under 35 U.S.C. 
119, 365(a) or 365(b).) For a CIP application, applicant should review whether any claim in the patent that will 
issue is supported by an earlier application and, if not, the applicant should consider canceling the reference to the 
earlier filed application. The term of a patent is not based on a claim-by-claim approach. See Notice of April 14, 
1995, 60 Fed Reg. 20,195, at 20,205. 

(complete the following, if applicable) 

Amend the specification by inserting, before the first line, the following sentence: 

A. 35 U.S.C 120, 121 and 365(c) 

() "This is a 

() continuation 

() continuation-in-part 

() divisional 

of copending application(s) serial number filed on 

( ) International Application filed on and which designated the U.S." 

Note: The proper reference to a prior filed PCT application that entered the US. national phase is the U.S. serial number 
and the filing date of the PCT application that designated the US. Moreover, (1) Where the application being 
transmitted adds subject matter to the International Application, then the filing can be as a continuation-in-part or (2) 
if it is desired to do so for other reasons then the filing can be as a continuation. 

( ) "The nonprovisional application designated above, namely application no. , 

filed , claims the benefit of U.S. Provisional Application(s) No(s).: 

{list application no(s). and filing date(s)} 

B. 35 U.S.C. 119(e) (Provisional Application) 

( ) "This application claims the benefit of U.S. Provisional Application(s) No(s).: 
{list application no(s). and filing date(s)} 
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2.2 Relate Back-35 ILS.C. 119 Priority Claim for Prior Application 

The prior U.S. application(s), including any prior International Application designating the U.S., 
identified above in item 2.1(A), in turn itself claim(s) foreign priority(ies) as follows: 

{list country, application no(s). and filing date(s)} 

The certified copy(ies) has (have) 

( ) been filed on , in prior application serial no. , which was filed on . 

() is (are) attached. 

2.3 Maintenance of Copendency of Prior Application 

NOTE: The PTO finds it useful if a copy of the petition filed in the prior application extending the term for response is filed with the 
papers constituting the filing of the continuation application. Notice of November 5, 1985 (1060 O.G. 27). 

A. ( ) Extension of time in prior application 

(This item must be completed and the papers filed in the prior application 
if the period set in the prior application has run.) 

( ) A petition, fee and response extends the term in the pending prior application until 
Extension of . 

( ) A copy of the petition filed in prior application is attached. 

B. () Conditional Petition for Extension of Time in Prior Application 

(complete this item, if previous item not applicable) 

( ) A conditional petition for extension of time is being filed in the pending prior 
application. 

() A copy of the conditional petition filed in the prior application is attached. 

2.4 Further Inventorship Statement Where Benefit of Prior Application(s) Claimed 

(complete applicable item A, B and/or C below) 

A. ( ) This application discloses and claims only subject matter disclosed in the prior application 
whose particulars are set out above, and the inventor(s) in this application are 

( ) the same. 
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( ) less than those named in the prior application. It is requested that the following inventor(s) 
identified for the prior application be deleted: 

{ type name(s) of inventor(s) to be deleted } 

B. () This application discloses and claims additional disclosure by amendment and a new 

declaration or oath is being filed. With respect to the prior application, the inventor(s) in this 
application are 

() the same. 

() the following additional inventor(s) have been added: 
(type name(s) of inventor (s) to be added) 

C. ( ) The inventorship for all the claims in this application are 

( ) the same. 

() not the same. An explanation, including the ownership of the various claims at the 
time the last claimed invention was made 

() is submitted. 

( ) will be submitted. 



2.5 Abandonment of Prior Application (if applicable) 

( ) Please abandon the prior application at a time while the prior application is pending, or when 
the petition for extension of time or to revive In that application is granted, and when this 
application is granted a filing date, so to make this application copending with said prior 
application. 

NOTE: According to the Notice of May 13, 1983 (103, TMOG 6-7), the filing of a continuation or continuation-in-part 
application is a proper response with respect to a petition for extension of time or a petition to revive and should 
include the express abandonment of the prior application conditioned upon the granting of the petition and the 
granting of a filing date to the continuing application. 

2.6 Petition for Suspension of Prosecution for the Time Necessary to File an Amendment 

NOTE: Where it is possible that the claims on file will give rise to a first action final for this continuation application and for 
some reason an amendment cannot be filed promptly (e.g, experimental data is being gathered) it may be desirable to 
file a petition for suspension of prosecution for the time necessary. 

(check the next Item, if applicable) 
( ) There is provided herewith a Petition To Suspend Prosecution for the Time Necessary to File 
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An Amendment (New Application Filed Concurrently) 



2.7 Small Entity (37 CFR § 1.28(a)) 

( ) Applicant has established small entity status by the previous submission of a statement in 
prior application serial no. on . 

() A copy of the statement previously filed is included. 
WARNING: See 37 CFR § 1.28(a). 

2.8. Notification in Parent Application of this Filing 

() A notification of the filing of this 
(check one of the following) 

() continuation 

() continuation-in-part 

( ) divisional 

is being filed in the parent application, from which this application claims priority 
under 35 U.S.C.§ 120. 

2.9 Incorporation by Reference 

() the entire disclosure of the prior application, from which a copy of the oath or declaration is 
supplied, is considered to be part of the disclosure of the accompanying 
application and is hereby incorporated by reference therein. 

3. Papers Enclosed Which are Required for Filing Date Under 37 CFR 1.53(b) (Regular) 
or 37 CFR 1.153 (Design) Application 

(X) 19 Pages of specification 
(X) 9 Pages of claims 
(X) _L Pages of Abstract 
(X) _6_ Sheets of drawing 

(X) formal 

() informal 

4. Additional papers enclosed 

() Amendment to claims: 

( ) Cancel in this application claims before calculating the filing fee. (At least one 

original independent claim must be retained for filing purposes). 
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( ) Add the claims shown in the attached amendment. (Claims added have been numbered 
consecutively following the highest numbered original claims). 

() Preliminary Amendment 

( ) Information Disclosure Statement (37 C.F.R. 1.98) 
() FormPTO-1449 
( ) Citations 

() Declaration of Biological Deposit 
() Special Comments 
() Other 

Declaration or oath (including power of attorney) 

(X) ENCLOSED. 

(X) Newly executed (original or copy) 

0 Copy from prior application No. _0/ (37 CFR 1 .63(d)- continuation/divisional) 

( ) DELETION OF INVENTORY - signed statement attached deleting 

inventor(s) named in the above-noted prior application (37 CFR 1.63(d) and 
1.33(b)) 

Declaration or Oath executed by: (check all applicable boxes) 
(X) inventor(s). 

( ) legal representative of inventor(s). 37 CFR 1.42 or 1.43 

( ) joint inventor or person showing a proprietary interest on behalf of inventor who 
refused to sign or cannot be reached. 

( ) this is the petition required by 37 CFR 1 .47 and the statement required by 37 CFR 
1.47 is also attached. See item 13 below for fee. 

0 NOT ENCLOSED. 

( ) Application is made by a person authorized under 37 CFR 1 .41(c) on behalf of all the above 
named inventor(s). The declaration or oath, along with the surcharge required by 37 CFR 
1.16(e) can be filed subsequently. 

( ) Showing that the filing is authorized. (Not required unless called into question. 37 
CFR 1.41(d)). 

Inventorship Statement 

WARNING: If the named inventors are each not the inventors of all the claims an explanation, including the ownership of the various claims at 

the time the last claimed invention was made, should be submitted. 

The inventorship for all the claims in this application are: 
() The same 
or 
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() Not the same. An explanation, including the ownership of the various claims at the time the last 
claimed invention was made, 
() is submitted 
() will be submitted. 

7. Language 

(X) English 
() Non-English 

() the attached translation is a verified translation. 37 CFR 1.52(d). 

8. Assignment 

(X) An assignment of the invention to Cisco Technology, Inc. 

(X) is attached. (A separate "ASSIGNMENT COVER LETTER ACCOMPANYING NEW 
PATENT APPLICATION" is also attached.) 

n () will follow. 

3 0 The prior application is assigned of record to (copy attached). 

39. Certified Copy - Foreign Priority Claim Under 35 U.S.C. 119 

Certified copy(ies) of applications) 

H {list country, application no(s). and filing date(s)} 

3 from which priority is claimed 

3 () is (are) attached. 

() will follow. 

NOTE: The foreign application forming the basis for the claim for priority must be referred to in the oath or declaration. 37 CFR 1 .55(a) and 1 .63. 

NOTE: This item is for any foreign priority for which the application being filed directly relates. If any parent U.S. application or International 

Application form which this application claims benefit under 35 U S.C. 120 is itself entitled to priority from a prior foreign application then 
complete item 17 on the ADDED PAGES FOR NEW APPLICATION TRANSMITTAL WHERE BENEFIT OR PRIOR U.S. 
APPLICATION(S) CLAIMED. 

10. Fee Calculation (37 C.F.R. 1.16) 



A. (X) Regular Application 



CLAIMS AS FILED 




Number Filed 


Number Extra 


Rate 


Basic Fee 
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$690.00 


Total Claims 
(37 CFR 1.16(c)) 


15-20 = 


0 


x$ 18.00 


$ 0 


Independent Claims 
(37 CFR 1.16(b)) 


15-3 = 


12 


x$ 78.00 


$936 


Multiple dependent 
claim(s), if any 
(37 CFR 1.16(d)) 


0 


0 


+ $ 260.00 


$ 0.00 



( ) Amendment canceling extra claims enclosed. 

( ) Amendment deleting multiple dependencies enclosed. 

( ) Fee for extra claims is not being paid at this time. 

NOTE: If the fees for extra claims are not paid on filing they must be paid or the claims canceled by amendment, prior to the expiration of the time 
si period set for response by the Patent and Trademark Office in any notice of fee deficiency. 37 CFR 1.16(d). 

n Filing Fee Calculation $ 1,626.00 

S B. 0 Design Application 

5 ($330.00 -37 CFR 1.16(f)) 

Filing Fee Calculation $ 
1 1 1 . Small Entity Statement(s) 

Z () Verified Statement(s) that this is a filing by a small entity under 37 CFR 1 .9 and 1 .27 is(are) 

attached. 

Filing Fee Calculation (50% of A or B above) $ 

NOTE: Any excess of the full fee paid will be refunded if a verified statement and a refund request are filed within 2 months of the date of timely 
payment of a full fee. 37 CFR 1 .28(a). 

12. Request for International-Type Search (37 CF R. 1.104(d)) 

( ) Please prepare an international-type search report for this application at the time when national 
examination on the merits takes place. 

13. Fee Payment Being Made At This Time 

( ) NOT ENCLOSED. 

() No filing fee is to be paid at this time. (This and the surcharge required by 37 CFR 1 .16(e) 
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can be paid subsequently.) 

(X) ENCLOSED 

(X) Filing fee $ 1,626.00 

(X) Recording assignment 

($40.00; 37 CFR 1.21(h)(1)) $ 40.00 

( ) petition fee for filing by other than all the inventors or person on behalf of the inventor where 
inventor refused to sign or cannot be reached. ($130.00; 37 CFR 1.47 & 1.17(h)) 
$ 



( ) for processing an application with a specification is a non-English language. ($130.00 37 
CFR 1.52(d) and 1.17(k)) 
$ 

() processing and retention fee. ($130.00; 37 CFR 1.53(d) and 1.21(1)) 

1 $ 

t () Fee for international-type search report. ($40.00; 3 7 CFR 1.21 (e)) 

:'j $ 

;0 Total fees enclosed $1,666.00 

y 14. Method of Payment of Fees 

% (X) Check in the amount of $ 1,666.00 

;Q () Charge Account No. 50-0902 in the amount of $ A duplicate of this transmittal is attached. 

3 15. Authorization to Charge Additional Fees 

WARNING: If no fees are to be paid on filing the following items should not be completed. 

WARNING: Accurately count claims, especially multiple dependent claims, to avoid unexpected high charges, if extra claim charges are authorized. 

(X) The Commissioner is hereby authorized to charge the following additional fees by this paper and during 
the entire pendency of this application to Account No. 50-0902, identifying our Attorney 
Docket No. 72255/06073. 

(X) 37 CFR 1 .16(a), (f)> or (g) (filing fees) 

(X) 37 CFR 1 .16(b), (c) and (d) (presentation of extra claims) 

(X) 37 CFR 1.17 (application processing fees) 

( ) 37 CFR 1 .16(e) (surcharge for filing the basic filing fee and/or declaration on a date later than the 

filing date of the application) 
() 37CFR1.17(a)(l)-(5) (extension fees pursuant to 37 CFR 1.136(a)) 
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( ) 37 CFR 1.18 (issue fee at or before mailing Notice of Allowance, pursuant to 37 CFR 1.31 1(b)) 

16. Instruction As To Overpayment 

0 Credit Account No. 50-0902, identifying our Attorney Docket No. . 

(X) Refund 

17. Incorporation by reference of added pages 

(X) The following pages are incorporated by reference: 

(X) "Assignment Cover Letter Accompanying New Application"; number of pages added 3 

0 Added Pages For Papers Referred To In Item 4 Above; number of pages added 

( ) Plus added pages deleting names of inventor(s) named in prior application(s) who is/are no 
longer inventor(s) of the subject matter claimed in this application; number of pages added__ 

(X) no further pages form apart of this Transmittal. The transmittal ends with this page. 



^Date: September 28. 2000 




ARTER & HADDEN LLP 
1 100 Huntington Building 
925 Euclid Avenue 
Cleveland, Ohio 44115-1475 
Phone: (216) 696-3394 
Fax: (216) 696-2645 
Customer No. 23380 
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DOCKET NO. 72255/06073 



HARDWARE-BASED ENCRYPTION/DECRYPTION EMPLOYING CYCLE 

STEALING 

5 

Field of Invention 

The present invention generally relates to a system for encryption and 
decryption of data, and more particularly to a hardware-based encryption and decryption 
system employing cycle stealing. 

10 

Background of the Invention 

In a typical wireless LAN configuration, A common model for network 
processing consists of a multi-level approach. This is common in many Ethernet LAN 
protocols such as IEEE 802.3. The model typically includes 3 major levels, namely a) 
15 Top :Logical-Link control; b) Middle: Medium Access Control (MAC); and c) Bottom: 

Physical interface (PHY). 

A wireless LAN configuration compliant to IEEE 802. 1 1 is similar to its 
wired counterpart and has the same three levels. Traditionally, the top Logical-Link 
control tasks are handled by software running on a HOST processor. The middle level is 

20 the responsibility of a MAC processor, which handles all frame traffic between the HOST 
and the PHY level. 

In a typical wireless local area network (WLAN) configuration, a 
portable or mobile device (e.g., a laptop personal computer) normally includes a HOST 
processor and a PCI card or PCMCIA card. On this card resides a Medium Access 

25 Control (MAC) processing system, a PHY (physical layer) processing device (e.g., a 
digital signal processor), and a main memory. The MAC processing system includes a 
MAC processor (e.g., an embedded processor), which is a multi-functional processor 
engine responsible for a variety of different processing tasks associated with the wireless 



communications. The PHY processing device performs such functions as 
encoding/decoding waveforms. Data transferred between the PHY processing device and 
the MAC processing system (i.e., the PHY data stream) may be encrypted using an 
encryption algorithm, such as RC4. Consequently, encrypted data received by the MAC 
5 processing system from the PHY processing device is initially stored to the main memory 
as encrypted data. At a later time, the MAC processor reads the stored encrypted data 
from main memory and decrypts the data. The decrypted data is then written to the main 
memory for subsequent processing by the HOST processor. 

Similarly, in the case of a data transmission from the MAC processor to 
10 the PHY data processing device, the data originates from the HOST processor that writes 
the data as plaintext to the main memory. The MAC processor will at a later time read 
the data from the main memory and encrypt it, using the same RC4 algorithm. Then the 
encrypted data is transmitted to the PHY processing device. 

Encryption algorithm RC4 (developed by RSA Data Security, Inc.) is used 
1 5 to encrypt data in accordance with Wired Equivalent Privacy for the IEEE wireless 
communications standard 802.1 1. RC4 is a variable key-size stream cipher with byte- 
oriented operations. The algorithm is based on the use of a random permutation. 
Analysis shows that the period of the cipher is overwhelmingly likely to be greater than 
10 100 . Eight to sixteen machine operations are required per output byte, and the cipher 
20 can be expected to run very quickly in software. RC4 is commonly used for file 

encryption and for secure communications, as in the encryption of traffic to and from 
secure web sites using the secured socket layer (SSL) protocol. 

In the prior art, both software and hardware approaches have been used to 
implement the private key RC4 algorithm. In the case where all operations are performed 
25 in software, a simple C program can be used, such as those illustrated herein. The RC4 
algorithm can be divided into three basic phases: phase 1 for lookup and loading of a 
private key; phase 2 having two parts, namely, phase 2a for filling an S-box table linearly 
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and phase 2b for initializing the S-box table with the private key; and phase 3 for the 
encrypting/decrypting operation (including determination of an X byte and an XOR 
operation). 

It should be understood that Phase 2 of the algorithm includes the two 
5 steps of: (phase 2a) filling an S-box table (256 x 8) linearly: S o =0, S,=l,. . .,S 2JJ =255; and 
then (phase 2b) initializing the S-box table by scrambling the table with the private key, 
repeating the key as necessary to address all 256 locations in the array. For example, if a 
16 byte key is used, the sequence would be: KEY 0 , KEY,, . . .,KEY ;J , KEY 0 , KEY,, 
. . .,KEY ;J repeating this sequence a total of 16 times to complete the scrambling. It 
10 should be appreciated that the term "key" refers to a plurality of "key values." In 

accordance with a preferred embodiment, each key value is a byte, and a key is comprised 
of 16 key values (i.e., 16 bytes). 16 bytes are required for 128-bit encryption. The key is 
a private key known only to the transmitter and receivers) of the encrypted data. 

As indicated above, in Phase 2b of the RC4 algorithm the S-box table is 
15 initialized with the private key. In this regard, index j is set to zero, then: 

For i = 0 to 255: 

j = (j + S.-+ KEY,) mod 256 
swap S, and S, 

20 

In the third phase (phase 3), two counters, i and j, are initialized to zero to 

index through the 256x8 S-box in a pseudorandom fashion. Thereafter, random bytes X 

are generated as follows: 

i = (i+1) mod 256 
25 j = G+Si) mod 256 

Swap Sj and Sj 
t = (S i + S j )mod 256 
X = S t 
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The foregoing code sequence is performed for every byte to be encrypted/decrypted. 
Being a symmetric crypto system, the same algorithm is used to decrypt or encrypt data 
depending on how the XOR data is used. In this regard, the byte X is XORed with 
plaintext to produce ciphertext or XORed with ciphertext to produce plaintext. 
5 Although the software implementation of the foregoing encryption 

algorithm appears simple in high level code, the software approach is slow. The software 
approach is too slow to meet the tight turn around time requirements of IEEE 802. 1 1 . 

In view of the deficiencies of the software implementation, hardware 
modifications to the MAC processor have been used to accelerate operation of the 
10 algorithm. Referring now to Fig. 2, there is shown a MAC processor 10 according to the 
prior art. MAC processor 10 is generally comprised of a CPU 20, a key storage 30, data 
path hardware engine 40, microcode controller 50, microcode RAM 70, and S-Box RAM 
100. 

CPU 20 is the main processing device of MAC processor 10, and provides 
15 signals for controlling operation of key storage 30 and microcode controller 50. Keys are 
commonly stored in "off-chip" RAM since they are large (often 128 bits or more), and 
there are many keys that might be used to decrypt and encrypt data depending on the 
source and destination of the packet address. Therefore, in the prior art a small on-chip 
key storage 30 is used to hold the current key bytes being used. Key storage 30 is loaded 
20 by using register decodes under the direction of software. Therefore, once the proper key 
is found, software can load the key and start phase 2 of the encryption algorithm 
discussed above. Data path hardware engine 40 provides an 8-bit wide data path for 
performing data manipulation for the RC4 algorithm. Data path hardware engine 40 
includes elements such as registers, adders, multiplexers, etc., used to read key storage 30 
25 and R/W S-box table RAM 100. Microcode controller 50 is used to control the data path 
to execute the operations needed to execute the RC4 algorithm. S-box table RAM 100 is 
an "on-chip" RAM (i.e., RAM located on the MAC processor chip) which stores the S- 
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box table. The use of an "on-chip" RAM allows for faster initialization and XOR byte 
generation than obtained with off-chip memory access. 

The present invention provides enhancements to the hardware arrangement 
in order to further improve the speed of the encryption/decryption operations. 

5 

Summary of the Invention 

According to a first aspect of the present invention there is provided a 
method for accelerating the generation of control signals in a microcode controller system 
including a microcode controller, a microcode memory, an address latch and a code word 

10 latch, the method comprising: opening the address latch during the second half of a clock 
cycle to store therein an address decoded by the microcode controller, while 
simultaneously closing the code word latch during the second half of a clock cycle; 
presenting the address stored in the address latch to the microcode memory to read out a 
code word therefrom; opening the code word latch during the first half of a clock cycle to 

15 store the code word read out from the microcode memory to the code word latch, while 
simultaneously closing the address latch during the first half of a clock cycle; and 
presenting the code word stored in the code word latch to the microcode controller for 
generation of output control signals and decoding at least one address. 

According to another aspect of the present invention there is provided a 

20 microcode controller system comprising: control means for generating control signals and 
decoding address data; means for latching address data decoded by the control means, 
said means for latching address data opening during the second half of a clock cycle to 
store therein said decoded address data; means for latching code word data, said means 
for latching code word data closing during the second half of a clock cycle, simultaneous 

25 with the opening of the means for latching address data; and means for storing code word 
data, wherein code word data is read out of the means for storing code word data in 
response to presentation thereto of the address data stored in the address latch, wherein 
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said means for latching code word data opens during the first half of a clock cycle to store 
the code word data read out from the means for storing code word data, and said means 
for latching address data simultaneously closes during the first half of a clock cycle, said 
control means generating control signals and decoding at least one address, using the 

5 code word data stored in the means for latching code word data. 

According to another aspect of the present invention there is provided a 
microcode controller system comprising: a microcode controller for generating control 
signals and decoding address data; an address latch for storing address data decoded by 
the microcode controller, said address latch opening during the second half of a clock 

10 cycle to store said decoded address data therein; a code word latch for storing code word 
data, said code word latch closing during the second half of a clock cycle, simultaneous 
with the opening of the address latch; and a microcode memory, wherein code word data 
is read out of the microcode memory in response to presentation thereto of the address 
data stored in the address latch, wherein said code word latch opens during the first half 

15 of a clock cycle to store the code word data read out from the microcode memory, and 
said address latch simultaneously closes during the first half of a clock cycle, said 
microcode controller generating control signals and decoding at least one address, using 
the code word data stored in the code word latch. 

According to another aspect of the present invention there is provided a 

20 method A method for accelerating the generation of control signals in a microcode 
controller system including a microcode controller, a microcode memory, an address 
latch and a code word latch, the method comprising: opening the address latch during the 
second half of a clock cycle to store therein an address decoded by the microcode 
controller, and closing the address latch during the first half of a clock cycle; presenting 

25 the address stored in the address latch to the microcode memory to read out a code word 
therefrom; presenting the code word read out from the microcode memory to the 
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microcode controller, said microcode controller generating output control signals and 
decoding at least one address from said presented code word. 

According to another aspect of the present invention there is provided a 
microcode controller system comprising: control means for generating control signals and 
decoding address data; means for latching address data decoded by the control means, 
said means for latching address data opening during the second half of a clock cycle to 
store therein said decoded address data, and closing during the first half of a clock cycle; 
and means for storing code word data, wherein code word data is read out of the means 
for storing code word data in response to presentation thereto of the address data stored in 
the means for latching address data, wherein said code word data read out from the means 
for storing code word data is presented to said control means for generating control 
signals and decoding address data. 

According to another aspect of the present invention there is provided a 
microcode controller system comprising: a microcode controller for generating control 
signals and decoding address data; an address latch for latching address data decoded by 
the microcode controller, said address latch opening during the second half of a clock 
cycle to store therein said decoded address data, and closing during the first half of a 
clock cycle; a code word memory for storing code word data, wherein code word data is 
read out of the code word memory in response to presentation thereto of the address data 
stored in the address latch, wherein said code word data read out from the code word 
memory is presented to said microcode controller to generate control signals and decode 
address data. 

According to another aspect of the present invention there is provided a 
method for accelerating the generation of control signals in a microcode controller system 
including a microcode controller, a microcode memory, an address latch and a code word 
latch, the method comprising: presenting an address decoded by the microcode controller 
to the microcode memory to read out a code word therefrom; opening the code word latch 



during the first half of a clock cycle to store the code word read out from the microcode 
memory to the code word latch, and closing the code word latch during the second half of 
the clock cycle; and presenting the code word stored in the code word latch to the 
microcode controller for generation of output control signals and decoding at least one 
5 address. 

According to another aspect of the present invention there is provided a 
microcode controller system comprising: control means for generating control signals and 
decoding address data; means for latching code word data, said means for latching code 
word data closing during the second half of a clock cycle; and means for storing code 

1 o word data, wherein code word data is read out of the means for storing code word data in 
response to presentation thereto of the address data decoded by the control means, means 
for storing code word data, wherein code word data is read out of the means for storing 
code word data in response to presentation thereto of the address data decoded by the 
control means, wherein said means for latching code word data opens during the first half 

15 of a clock cycle to store the code word data read out from the means for storing code 
word data, said control means generating control signals and decoding at least one 
address, using the code word data stored in the means for latching code word data. 

According to another aspect of the present invention there is provided a 
microcode controller system comprising: a microcode controller for generating control 

20 signals and decoding address data; a latch for storing code word data, said latch closing 
during the second half of a clock cycle; and a memory for storing code word data, 
wherein code word data is read out of the memory in response to presentation thereto of 
the address data decoded by the microcode controller, wherein said latch opens during the 
first half of a clock cycle to store the code word data read out from the memory, said 

25 microcode controller generating control signals and decoding at least one address, using 
the code word data stored in the latch. 
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According to another aspect of the present invention there is provided a 
method for accelerating the generation of control signals in a microcode controller system 
including a microcode controller and a dual read port microcode memory having (1) a 
first read port comprised of: (a) a first read address port and (b) a first read data port, and 

5 (2) a second read port comprised of: (a) a second read address port and (b) a second read 
data port, the method comprising: presenting an address decoded by the microcode 
controller to the first read address port, to read out a code word from the first read data 
port; generating microcode control signals at the microcode controller using the code 
word from the first data output port; generating a next address at the microcode controller 

10 using the code word from the first data output port; presenting the next address to the 

second read address port to read out a next code word from the second read data port; and 
alternating use of the first and second read ports for every other clock cycle. 

According to another aspect of the present invention there is provided a 
system for accelerating the generation of control signals in a microcode controller system 

15 including: a microcode controller for decoding addresses and generating microcode 
control signals; and a dual read port microcode memory having: (1) a first read port 
comprised of: (a) a first read address port and (b) a first read data port, and (2) a second 
read port comprised of: (a) a second read address port and (b) a second read data port, 
wherein an address decoded by the microcode controller is presented to the first read 

20 address port, to read out a code word from the first read data port, said microcode 
controller using the code word from the first data output port to generate microcode 
control signals and generate a next address, wherein said next address is presented to the 
second read address port to read out a next code word from the second read data port, said 
first and second read ports are alternately read from every other clock cycle. 

25 According to another aspect of the present invention there is provided a 

system for accelerating the generation of control signals in a microcode controller system 
including: a microcode controller for decoding addresses and generating microcode 
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control signals; and a dual read port microcode memory having: (1) a first read port 
comprised of: (a) a first read address port and (b) a first read data port, and (2) a second 
read port comprised of: (a) a second read address port and (b) a second read data port, 
wherein an address decoded by the microcode controller is presented to the first read 

5 address port, to read out a code word from the first read data port, said microcode 
controller using the code word from the first data output port to generate microcode 
control signals and generate a next address, wherein said next address is presented to the 
second read address port to read out a next code word from the second read data port, said 
first and second read ports are alternately read from every other clock cycle. 

10 According to another aspect of the present invention there is provided a 

method for accelerating the generation of control signals in a pipelined microcode 
controller system including a microcode controller, a microcode memory, a plurality of 
address latches and a plurality of code word latches, and having a plurality of clock cycle 
phases, the method comprising: (a) opening a code word latch during the Nth phase of the 

15 clock cycle to store code word data therein read out from the microcode memory; (b) 
closing said code word latch during the N+l phase of the clock cycle, simultaneous with 
the opening of an address latch, wherein said address latch opens during the N+lth phase 
of a clock cycle to store address data read out from the microcode memory for the 
subsequent phase of the clock cycle after the N+lth phase of the clock cycle; and 

20 repeating steps (a) and (b) with alternating phases of the clock cycle for respective 

opening and closing of the address latch and code word latch for a plurality of phases of 
the clock cycle. 

According to another aspect of the present invention there is provided a 
system A system for accelerating the generation of control signals in a pipelined 
25 microcode controller system having a plurality of clock cycle phases including: a 

microcode controller for decoding addresses and generating microcode control signals; a 
microcode memory for storing code word data; a plurality of address latches associated 
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with the microcode controller and microcode memory; and a plurality of code word 
latches associated with the microcode controller and microcode memory, wherein (a) a 
code word latch is opened during the Nth phase of the clock cycle to store code word data 
therein read out from the microcode memory, (b) the code word latch is closed during the 

5 N+l phase of the clock cycle, simultaneous with the opening of an address latch, wherein 
said address latch opens during the N+lth phase of a clock cycle to store address data 
from the microcode controller for the subsequent phase of the clock cycle after the N+lth 
phase of the clock cycle, wherein steps (a) and (b) are repeated with alternating phases of 
the clock cycle for respective opening and closing of the address latch and code word 

1 o latch for a plurality of phases of the clock cycle. 

According to another aspect of the present invention there is provided a 
system for accelerating the generation of control signals in a pipelined microcode 
controller system having a plurality of clock cycle phases including: processing means for 
decoding addresses and generating microcode control signals; means for storing code 

15 word data; a plurality of means for latching address data; and a plurality of means for 
latching code word data, wherein (a) a means for latching code word data is opened 
during the Nth phase of the clock cycle to store code word data therein read out from the 
microcode memory, (b) the means for latching code word data is closed during the N+l 
phase of the clock cycle, simultaneous with the opening of a means for latching address 

20 data, wherein said means for latching address data opens during the N+ 1 th phase of a 
clock cycle to store address data from the processing means for the subsequent phase of 
the clock cycle after the N+lth phase of the clock cycle, wherein steps (a) and (b) are 
repeated with alternating phases of the clock cycle for respective opening and closing of 
the means for latching address data and means for latching code word data, for a plurality 

25 of phases of the clock cycle. 
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An advantage of the present invention is the provision of a system for 
microcode controller system that provides faster and more efficient execution of an 
encryption/decryption algorithm. 

Another advantage of the present invention is the provision of a microcode 
5 controller system provides greater ease of operation. 

Still other advantages of the invention will become apparent to those 
skilled in the art upon a reading and understanding of the following detailed description, 
accompanying drawings and appended claims. 

10 Brief Description of the Drawings 

The invention may take physical form in certain parts and arrangements of 
parts, a preferred embodiment and method of which will be described in detail in this 
specification and illustrated in the accompanying drawings which form a part hereof, and 
wherein: 

15 Fig. 1 illustrates a typical PHY data stream; 

Fig. 2 is a block diagram of a typical prior art hardware configuration for 
performing encryption/decryption; 

Fig. 3 is a block diagram of a hardware configuration for performing 
encryption/decryption, according to a preferred embodiment of the present invention; and 
20 Fig. 4 illustrates timing diagrams for microcode controller fetch and 

execute phases according to both the prior art, and a preferred embodiment of the present 
invention, wherein level sensitive latches are employed; and 

Fig. 5 illustrates a timing diagram for an alternative embodiment of the 
present invention, wherein multiple stages of level sensitive latches are employed. 
25 Fig. 6 shows timelines illustrating improvements in data processing speed 

over the prior art. 
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Detailed Description of the Prefer red Kmhodiment 

It should be understood that while a preferred embodiment of the present 
invention is described in connection with the RC4 encryption/decryption algorithm, the 
present invention is also suitably applicable to other encryption/decryption algorithms to 

5 provide improved processing speed and efficiency. Furthermore, while the present 
invention has been described in the context of a system for encrypting and decrypting 
data, the present invention is also contemplated for use with applications outside of 
encryption/decryption, as a means for accelerating data processing operations. 

Referring now to the drawings wherein the showings are for the purposes 

1 o of illustrating a preferred embodiment of the invention only and not for purposes of 

limiting same, Fig. 1 illustrates a typical PHY data stream. The PHY data stream include 
data frames having two main components, namely, a header portion, and a data portion. 
The header portion includes control information such as source, destination address; data 
rate, etc. The MAC processor processes the header information so it knows how to deal 

15 with the data portion. Furthermore, some information in the header portion may direct 
the MAC processor to perform actions such as generating a response message to the 
sender or steering the data to another station. The header portion is not typically 
encrypted. The data portion typically includes data that is encrypted, and is intended for 
processing by the HOST processor. This data may be used by the HOST processor to 

20 communicate with other HOST processors across a network using some upper level 
protocol, such as sending an FTP from one station to another station. In the case of a 
system complying with IEEE standard 802.1 1, the HOST processor does not use the 
header information. 

The data processing steps for decryption using prior art systems will now 

25 be described in detail with reference to Figs. 1 and 2. As can be seen in Fig. 1, each 

frame of data is comprised of a header portion and a data portion. A short time gap (i.e., 
interframe spacing) is provided between each frame. After the header portion of the first 
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data frame (frame #1) has been loaded, phase 1 of the RC4 algorithm commences. The 
address portion of the header is used to begin the key lookup. After the proper key is 
found, it is loaded into the key register. While this is happening, encrypted data 
continues to arrive from the PHY processing device After the key (i.e., the plurality of 

5 key values) is completely loaded into the key register, phase 2 of the RC4 algorithm 
commences. Phase 2 continues until a period of time after the header for the next data 
frame (frame #2) has begun to be received. However, most of the time for phase 2 occurs 
during the interframe spacing. Phase 3 (decrypting/encrypting operation for frame #1) 
will commence while the header for the next data frame (frame #2) is still being received 

10 by the MAC processor. However, as shown, due to the tight turn around time; decryption 
of all data of frame #1 is not completed before the data portion of frame #2 is received. 
This is due to the long period of time needed to complete phases 1 and 2 using the prior 
art system as shown in Fig. 2. It should be understood that a different key may be used 
for each received data frame since the MAC processor may be receiving data from 

15 different clients, each having a unique private key. 

As indicated above, the IEEE wireless communication standard 802.11 
requires the use of RC4 to encrypt and decrypt frames that are delivered across a wireless 
LAN. This creates the potential for performance problems since the inter frame spacing 
timing (SIFs) between data packets is tight as shown in Fig. 1 . The decryption of a 

20 frame must complete before a subsequent frame arrives so that the next frame can be 
decrypted. As described above, the RC4 algorithm uses a multiple step process to 
prepare an S-box table. This process includes finding and loading a private key, and then 
scrambling the S-box table to initialize it with the private key. The key loading process 
cannot begin until the header portion of a frame has been processed. Consequently, there 

25 is little time to decrypt the data portion of the frame before the next frame arrives. The 
problem is more pronounced on short frames since there is little time to "amortize the 
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cost" of loading the key and initializing the S-box table with the key, over the packet 
size. 

Referring now to Fig. 3, there is shown a modified MAC processor 10', 
according to a preferred embodiment of the present invention. The present invention 

5 contributes to faster processing of phase 2 (S-box table initialization) and phase 3 
(decrypt/encrypt) of the RC4 algorithm. 

In this regard, the present invention accelerates operations of microcode 
controller 50 by using an address latch 60 and an instruction code word latch 80 to create 
the effect of a dual ported microcode storage, as will be described in further detail below. 

10 This allows optimization of the RC4 algorithm in that the fetch of the next microcode 
word and current microcode execute operation can proceed on the same clock cycle. 
These cycle stealing latches also help to improve critical paths, allowing intermediate 
results to race ahead and get captured by flip flops where the control signals then go to 
the data path. Therefore, the present invention contributes to significant improvement in 

15 the speed of the microcode operations for preparing the S-box tables. 

The performance boost provided by the level sensitive latches will now be 
described with reference to the timing diagram of Fig. 4. Section I shows the timing 
associated with the prior art, while Section II shows the timing associated with the 
present invention. This figure shows five (5) clock cycles and a starting signal (START). 

20 For Section I, the signals are labeled A, B, C to correspond to the microcontroller 

arrangement of Fig. 2 (prior art). For Section II, the signals are labeled A, B, C, and D to 
correspond to the microcontroller arrangement of Fig. 3 (present invention). The "XXX" 
sequences indicate when the next address and code word fetch buses are not stable due to 
memory access and decode times. An incrementing sequence is shown where the code 

25 address begins at 0 and a corresponding code word fetch occurs (CO). The sequence 

continues, address 1 and code word fetch occurs (CI), etc. In accordance with the prior 
art, a flip flop is used to hold the address which gets updated on the rising edge of the 
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clock pulse. The microcode fetch then occurs using the address flip flop with 
approximate timing as shown in section I. The current code word, in turn, is used to 
decode and calculate the next address, which gets updated at the next rising edge (e.g. CO 
generates address 1). As can be observed, the next address just makes the setup time, 

5 thus very little slack exists in setup timing using the prior art. Consequently, increasing 
the clock frequency is not possible. 

In the case of the present invention (Fig. 3), the address flip flop is 
replaced with a level sensitive address latch 60. Address latch 60 is closed the 1 st half of 
the clock cycle and then open the 2 nd half of the clock cycle. Code word latch 80 is also 

10 provided to the code word fetch path, which is closed the 2 nd half of the clock cycle and 
then open the 1 st half of the clock cycle. Code word latch 80 is used to present the code 
word into microcode controller 50, and address latch 60 is used to present the address to 
microcode RAM 70, as shown in Fig. 3. During the first phase (i.e., 1 st half of the clock 
cycle) code word latch 80 is open and the next instruction flows through. At mid-cycle 

15 address latch 60 opens and code word latch 80 closes, thus holding the current instruction 
safely as the address changes to microcode RAM 70. Address latch 60 opens during the 
back half of the clock cycle to allow the next address to be calculated ahead of time 
(forwarding ahead), so that it is ready by the end of the clock cycle. 

For example, before point Tl in the Fig. 4, the next address is calculated 

20 from the decode of code fetch contents (instruction C2 decoded to generate next address 
3). Address latch 60 is frozen prior to point Tl, and consequently the code fetch is held 
stable. After point Tl address latch 60 opens and updates to the next address (address 3). 
Normally, this would cause the code fetch to update and transition before point T2. 
However, microcode controller 50 uses the latched version of the code word fetch, hence 

25 code word latch 80 closes at point Tl and microcode controller 50 sees a stable code 

word (C2) at the point T2 where it is correctly executed. It should be appreciated that the 
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code words may not proceed in a linear fashion as shown, such as in the case of loops and 
branches. 

The end result is that the code word is ready earlier in accordance with the 
present invention. Accordingly, the next address calculation is made earlier in time, since 

5 a cycle stealing occurs from the address latch to the code word latch. Therefore, it is 
possible to speedup the clock frequency X2 using the present invention, as compared to 
using the prior art, since the setup/hold relationship to the latches are improved. 

It should be appreciated that alternative embodiments of the present 
invention include the use of only a latch to cycle steal address data, the use of only a 

10 latch to cycle steal code word data, as well as the use of a pair of latches to cycle steal 
both address data and code word data, as described above. 

In an alternative embodiment, the microcode storage is implemented with 
a multiple read port memory (rather than latches) to create a similar effect as in the 
preferred embodiment. A typical dual read port memory includes (1) a first read port 

15 comprised of: (a) a first read address port and (b) a first read data port, and (2) a second 
read port comprised of (a) a second read address port and (b) a second read data port. In 
this alternative embodiment, a dual read port microcode memory is used for microcode 
RAM 70. An address decoded by microcode controller 50 is presented to the first read 
address port, to read out a code word from the first read data port. The code word read 

20 out of the first read data port is used to generate the next address which is presented to the 
second read address port. The code word read out of the first read data port is also used 
by the microcode controller to generate microcode control signals. The next address is 
used to obtain the next code word from the second read data port. Processing continues 
as with the first code word. Use of the dual read ports is alternated, such that the first 

25 read address/data ports functions as the second read address/data ports, and the second 
read address/data ports function as the first read address/data ports, every other clock 
cycle. It should be further noted that the dual read port microcode memory may be a 
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synchronous memory (clocked) or asynchronous memory (non-clocked). Moreover, the 
dual read port microcode memory may be a synchronous burst or non-burst memory. 

In yet another alternative embodiment, multiple address latches and 
multiple code word latches are used in a pipelined system. In this regard, code word data 

5 and address data are latched in a pipelined system having a plurality of clocked execution 
phases. A code word latch for storing code word data is opened during the Nth phase of a 
clock cycle to store the code word data read out from microcode memory to the code 
word latch. This code word latch is closed during the N+lth phase of a clock cycle, 
simultaneous with the opening of the address latch on the same phase. The address latch 

10 opens during the N+lth phase of a clock cycle to store the address data from the 

microcode controller for the subsequent phase of the clock cycle after the N+lth phase of 
a clock cycle. The foregoing sequence repeats as stated above, with alternating phases 
for the opening and closing of the address and code word latches for a plurality of phases 
of the clock cycle. For instance, the code word latch is open on odd phases clock cycles 

15 (i.e., 1,3,5, etc.) and is closed on even phase clock cycles (i.e., 2, 4, 6, etc.). Likewise, 
the address latch is open on even phase clock cycles and closed on odd phase clock 
cycles. A representative timing diagram showing a 4 phase clocking system is shown in 
Fig. 5. 

It should be understood that all the improvements mentioned for 
20 decryption of data are likewise realized for encryption of data. 

Fig. 6 provides timelines for a decryption operation that illustrate 
performance improvements contributed by the present invention. Section I is a timeline 
associated with the prior art, while Section II is a time line associated with the present 
invention. It should be appreciated that Section II also illustrates the effects provided by 
25 use of a dual ported key storage, as disclosed in related application serial no. 

9 filed , and assigned to the assignee of the 

present application. Dual ported key storage allows a key to be loaded into memory 
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(write port) (phase 1), while simultaneously reading a key (read port) to initialize the S- 
box table with the keys (phase 2). The timelines of Fig. 6 show the six basic steps that 
are performed (A - F) during two back-to-back decryption phases. Steps A - F 
correspond to the tasks noted in the table below: 



STEP 


TASK 


A 


Lookup and load key for frame #1 . May also start phase 2a of frame #1 at this step, 
(phase l/2a). 


B 


Initialize S-box table for frame #1. May also do phase 2a of frame #1 at this step, 
(phase 2a/2b). 


C 


Lookup and load key for frame #2. May also start phase 2a of frame #2 at this step, 
(phase l/2a) 


D 


Perform decryption for frame #1 (phase 3) 


E 


Initialize S-box table for frame #2. May also do phase 2a of frame #2 at this step, 
(phase 2a/2b) 


F 


Lookup and load key for frame #3. May also start phase 2a of frame #3 at this step, 
(phase 1) 



5 

The three columns in Sections I and II of Fig. 6 respectively show the 



resource utilization for loading keys (phase 1), initialization of the S-box table (phase 2) 
and decryption (phase 3). As can be seen, the prior art takes 160|is to finish with the first 
decryption (frame #1) and start the next decryption (frame #2). The present invention 

10 contributes to the completion of the same tasks in 75|is through use of level sensitive 
latches during microcode fetch and execute (as shown with the star in Fig. 6). In this 
regard, reference is made to the length of timelines B, E and D in Sections I and II. 

It should be appreciated that in alternative embodiments of the present 
invention, independent transmission (TX) and reception (RX) engines or a single shared 

15 TX/RX engine may be provided. The encryption/decryption engine, being comprised of 
memories and datapath, may include a common data path with multiple SBOX memories 
used for TX and RX of forthcoming packets. Another alternative includes the use 
multiple datapaths and SBOX memories for full parallel operations. In this regard it 
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would be possible to perform a full duplex TX encryption and RX decryption at the same 
time. It should be appreciated that any number of multiple instances of 
encryption/decryption engines may be provided on a single MAC processor (e.g., four 
receive engines, two transmit engines for a total of six different SB OX tables and six 

5 different key registers) . 

The present invention has been described with reference to a preferred 
embodiment. Obviously, modifications and alterations will occur to others upon a 
reading and understanding of this specification. It is intended that all such modifications 
and alterations be included insofar as they come within the scope of the appended claims 

10 or the equivalents thereof. 
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Having thus described the invention, it is now claimed: 



1 . A method for accelerating the generation of control signals in a 
microcode controller system including a microcode controller, a microcode memory, an 
address latch and a code word latch, the method comprising: 

opening the address latch during the second half of a clock cycle to store 
therein an address decoded by the microcode controller, while simultaneously closing the 
code word latch during the second half of a clock cycle; 

presenting the address stored in the address latch to the microcode 
memory to read out a code word therefrom; 

opening the code word latch during the first half of a clock cycle to store 
the code word read out from the microcode memory to the code word latch, while 
simultaneously closing the address latch during the first half of a clock cycle; and 

presenting the code word stored in the code word latch to the microcode 
controller for generation of output control signals and decoding at least one address. 

2. A microcode controller system comprising: 

control means for generating control signals and decoding address data; 

means for latching address data decoded by the control means, said means 
for latching address data opening during the second half of a clock cycle to store therein 
said decoded address data; 

means for latching code word data, said means for latching code word data 
closing during the second half of a clock cycle, simultaneous with the opening of the 
means for latching address data; and 
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means for storing code word data, wherein code word data is read out of 
the means for storing code word data in response to presentation thereto of the address 
data stored in the address latch, 

wherein said means for latching code word data opens during the first half 
of a clock cycle to store the code word data read out from the means for storing code 
word data, and said means for latching address data simultaneously closes during the first 
half of a clock cycle, said control means generating control signals and decoding at least 
one address, using the code word data stored in the means for latching code word data. 

3 . A microcode controller system comprising : 

a microcode controller for generating control signals and decoding address 

data; 

an address latch for storing address data decoded by the microcode 
controller, said address latch opening during the second half of a clock cycle to store said 
decoded address data therein; 

a code word latch for storing code word data, said code word latch closing 
during the second half of a clock cycle, simultaneous with the opening of the address 
latch; and 

a microcode memory, wherein code word data is read out of the microcode 
memory in response to presentation thereto of the address data stored in the address latch, 

wherein said code word latch opens during the first half of a clock cycle to 
store the code word data read out from the microcode memory, and said address latch 
simultaneously closes during the first half of a clock cycle, said microcode controller 
generating control signals and decoding at least one address, using the code word data 
stored in the code word latch. 
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4. A method for accelerating the generation of control signals in a 
microcode controller system including a microcode controller, a microcode memory, an 
address latch and a code word latch, the method comprising: 

opening the address latch during the second half of a clock cycle to store 
therein an address decoded by the microcode controller, and closing the address latch 
during the first half of a clock cycle; 

presenting the address stored in the address latch to the microcode 
memory to read out a code word therefrom; 

presenting the code word read out from the microcode memory to the 
microcode controller, said microcode controller generating output control signals and 
decoding at least one address from said presented code word. 

5. A microcode controller system comprising: 

control means for generating control signals and decoding address data; 

means for latching address data decoded by the control means, said means 
for latching address data opening during the second half of a clock cycle to store therein 
said decoded address data, and closing during the first half of a clock cycle; and 

means for storing code word data, wherein code word data is read out of 
the means for storing code word data in response to presentation thereto of the address 
data stored in the means for latching address data, wherein said code word data read out 
from the means for storing code word data is presented to said control means for 
generating control signals and decoding address data. 

6. A microcode controller system comprising: 

a microcode controller for generating control signals and decoding address 

data; 
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an address latch for latching address data decoded by the microcode 
controller, said address latch opening during the second half of a clock cycle to store 
therein said decoded address data, and closing during the first half of a clock cycle; 

a code word memory for storing code word data, wherein code word data 
is read out of the code word memory in response to presentation thereto of the address 
data stored in the address latch, wherein said code word data read out from the code word 
memory is presented to said microcode controller to generate control signals and decode 
address data. 

7. A method for accelerating the generation of control signals in a 
microcode controller system including a microcode controller, a microcode memory, an 
address latch and a code word latch, the method comprising: 

presenting an address decoded by the microcode controller to the 
microcode memory to read out a code word therefrom; 

opening the code word latch during the first half of a clock cycle to store 
the code word read out from the microcode memory to the code word latch, and closing 
the code word latch during the second half of the clock cycle; and 

presenting the code word stored in the code word latch to the microcode 
controller for generation of output control signals and decoding at least one address. 

8. A microcode controller system comprising: 

control means for generating control signals and decoding address data; 

means for latching code word data, said means for latching code word data 
closing during the second half of a clock cycle; and 

means for storing code word data, wherein code word data is read out of 
the means for storing code word data in response to presentation thereto of the address 
data decoded by the control means, 
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wherein said means for latching code word data opens during the first half 
of a clock cycle to store the code word data read out from the means for storing code 
word data, said control means generating control signals and decoding at least one 
address, using the code word data stored in the means for latching code word data. 

9. A microcode controller system comprising: 

a microcode controller for generating control signals and decoding address 

data; 

a latch for storing code word data, said latch closing during the second half 
of a clock cycle; and 

a memory for storing code word data, wherein code word data is read out 
of the memory in response to presentation thereto of the address data decoded by the 
microcode controller, 

wherein said latch opens during the first half of a clock cycle to store the 
code word data read out from the memory, said microcode controller generating control 
signals and decoding at least one address, using the code word data stored in the latch. 

10. A method for accelerating the generation of control signals in a 
microcode controller system including a microcode controller and a dual read port 
microcode memory having (1) a first read port comprised of: (a) a first read address port 
and (b) a first read data port, and (2) a second read port comprised of: (a) a second read 
address port and (b) a second read data port, the method comprising: 

presenting an address decoded by the microcode controller to the first read 
address port, to read out a code word from the first read data port; 

generating microcode control signals at the microcode controller using the 
code word from the first data output port; 
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generating a next address at the microcode controller using the code word 
from the first data output port; 

presenting the next address to the second read address port to read out a 
next code word from the second read data port; and 

alternating use of the first and second read ports for every other clock 

cycle. 

11. A system for accelerating the generation of control signals in a 
microcode controller system including: 

a microcode controller for decoding addresses and generating microcode 
control signals; and 

a dual read port microcode memory having: 

(1) a first read port comprised of: (a) a first read address port and 
(b) a first read data port, and 

(2) a second read port comprised of: (a) a second read address port 
and (b) a second read data port, 

wherein an address decoded by the microcode controller is presented to 
the first read address port, to read out a code word from the first read data port, said 
microcode controller using the code word from the first data output port to generate 
microcode control signals and generate a next address, wherein said next address is 
presented to the second read address port to read out a next code word from the second 
read data port, said first and second read ports are alternately read from every other clock 
cycle. 

12. A system for accelerating the generation of control signals in a 
microcode controller system including: 
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processing means for decoding addresses and generating microcode 

control signals; and 

means for storing code words having a dual read port, said means for 

storing code words including: 

(1) a first read port comprised of: (a) a first read address port and 

(b) a first read data port, and 

(2) a second read port comprised of: (a) a second read address port 

and (b) a second read data port, 

wherein an address decoded by the processing means is presented to the 
first read address port, to read out a code word from the first read data port, said 
processing means using the code word from the first data output port to generate 
microcode control signals and generate a next address, wherein said next address is 
presented to the second read address port to read out a next code word from the second 
read data port, said first and second read ports are alternately read from every other clock 
cycle. 

13. A method for accelerating the generation of control signals in a 
pipelined microcode controller system including a microcode controller, a microcode 
memory, a plurality of address latches and a plurality of code word latches, and having a 
plurality of clock cycle phases, the method comprising: 

(a) opening a code word latch during the Nth phase of the clock cycle to 
store code word data therein read out from the microcode memory; 

(b) closing said code word latch during the N+l phase of the clock cycle, 
simultaneous with the opening of an address latch, wherein said address latch opens 
during the N+lth phase of a clock cycle to store address data read out from the microcode 
memory for the subsequent phase of the clock cycle after the N+lth phase of the clock 
cycle; and 
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repeating steps (a) and (b) with alternating phases of the clock cycle for 
respective opening and closing of the address latch and code word latch for a plurality of 
phases of the clock cycle. 

14. A system for accelerating the generation of control signals in a 
pipelined microcode controller system having a plurality of clock cycle phases including: 

a microcode controller for decoding addresses and generating microcode 
control signals; 

a microcode memory for storing code word data; 

a plurality of address latches associated with the microcode controller and 
microcode memory; and 

a plurality of code word latches associated with the microcode controller 
and microcode memory, 

wherein (a) a code word latch is opened during the Nth phase of the clock 
cycle to store code word data therein read out from the microcode memory, (b) the code 
word latch is closed during the N+l phase of the clock cycle, simultaneous with the 
opening of an address latch, wherein said address latch opens during the N+lth phase of a 
clock cycle to store address data from the microcode controller for the subsequent phase 
of the clock cycle after the N+lth phase of the clock cycle, wherein steps (a) and (b) are 
repeated with alternating phases of the clock cycle for respective opening and closing of 
the address latch and code word latch for a plurality of phases of the clock cycle. 

15. A system for accelerating the generation of control signals in a 
pipelined microcode controller system having a plurality of clock cycle phases including: 

processing means for decoding addresses and generating microcode 
control signals; 

means for storing code word data; 
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a plurality of means for latching address data; and 
a plurality of means for latching code word data, 

wherein (a) a means for latching code word data is opened during the Nth 
phase of the clock cycle to store code word data therein read out from the microcode 
memory, (b) the means for latching code word data is closed during the N+l phase of the 
clock cycle, simultaneous with the opening of a means for latching address data, wherein 
said means for latching address data opens during the N+lth phase of a clock cycle to 
store address data from the processing means for the subsequent phase of the clock cycle 
after the N+lth phase of the clock cycle, wherein steps (a) and (b) are repeated with 
alternating phases of the clock cycle for respective opening and closing of the means for 
latching address data and means for latching code word data, for a plurality of phases of 
the clock cycle. 
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ABSTRACT 

A system for the encryption and decryption of data employing cycle 
stealing to accelerate data processing operations. The cycle stealing is employed by using 
level sensitive latches in a microcode controller system for storing addresses and code 
words. The microcode controller system controls the data path hardware for executing 
the encryption/decryption operations. 
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Docket No. 72255/06071 

MOA EATI QN FOR PATEN T ATO CAXtQS 

As a below named inventor, I hereby declare that: 

My residence, post office address, and citizenship are as stated below next to my name. 

I believe that I am the original, first and sole inventor (if only one name is listed below), or an 
original, first and join! inventor (if plural names are listed below) of the subject matter which is 
claimed, and for which a patent is sought on the invention entitled: 

HARDWARE-BASED ENCRYPTION/DECRYPTION EMPLOYING CYCLE 

STEALING 

the specification of which is attached hereto, unless the following box is checked: 

was filed on , 20 „, as United States Application 

Number or PCT International Application Number . 

I hereby state that I have reviewed and understand the contents of the above-identified 
specification, including the claims, as amended by any amendment referred to above. 

I acknowledge the duty to disclose information which is material to patentability as defined in 
Title 37, Code of Federal Regulations, §1,56, 

I hereby claim foreign priority benefits under Title 35, United States Code, §§1 19(a) - (d) or 
§365(b) of any foreign application(s) for patent or inventor's certificate, or §365(a) of any PCT 
International application whfch designated a? least one eountiy other than the United States, 
listed below and have also identified below any foreign application for patent or inventor's 
certificate, or PCT International application having a filing date before that of the application on 
which priority is claimed: 

NONE 

I hereby claim the benefit under Title 35, United States Code, §1 19(e) of any United States 
provisional application^) listed below: 

NONE 

I hereby claim the benefit under Title 35, United States Code, §120 of any United States 
application^ or §365(c) of any PCT International application designating the United States, 
listed below and, insofar as flic subject matter of each of the claims of this application is not 
disclosed in the prior United States or PCT International application in the manner provided by 
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the first paragraph of Title 35, United States Code, §1 12, 1 acknowledge the duty to disclose 
information which is material to patentability as defined in Tille 37, Code of Federal 
Regulations, §1.56 which became available between the filing date of the prior application and 
the national or PCX International filing date of this application: 

NONE 

1 hereby appoint the following registered attorney® and/or agent(s) to prosecute this application 
and to transact all business in the Patent and Trademark Office connected therewiTh: 

Alan J. Ross> Reg. No. 33,767 
JohaX. Garred, Reg, No. 31,830 
Michael A. Jaffe, Reg. No, 36,326 
Susan L Mizer, Reg. No, 38,245 
James C Scott, Reg, No. 35^351 
Jay V. Ryan, Reg. No. 37,064 

Michael A. Jaffe 
(216) 696-3394 

Michael A. Jaffe 

ARTER & HADDEN LLP 
1 100 Huntington Building 
925 Euclid Avenue 
Cleveland, Ohio 44115-1475 
Customer No. 23380 

I hereby declare that all statements made herein of my own knowledge are true and that all 
statements made on information and belief are believed to be true; and further that these 
statements were made with the knowledge that willful false statements and the like so made axe 
punishable by fine or imprisonment, or both, under IS U.S.C 1001 and that such willful false 
statements may jeopardize the validity of the application or any patent issued thereon. 

Full name of sole or 

Inventor's signature 
Date 



Residence : Hudson, Ohio 

Citizenship ; United States of America 

Post Office Address : 1769 Mayflower Lane, Hudson, Ohio 44236 
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